Full List

Search

Recent Vulnerabilities

• CVE-2000-0198 • published on March 22, 2000 Buffer overflow in POP3 and IMAP servers in the MERCUR mail server suite allows remote attackers to cause a denial of service.
• CVE-2000-0203 • published on March 22, 2000 The Trend Micro OfficeScan client tmlisten.exe allows remote attackers to cause a denial of service via malformed data to port 12345.
• CVE-2000-0205 • published on March 22, 2000 Trend Micro OfficeScan allows remote attackers to replay administrative commands and modify the configuration of OfficeScan clients.
• CVE-2000-0213 • published on March 22, 2000 The Sambar server includes batch files ECHO.BAT and HELLO.BAT in the CGI directory, which allow remote attackers to execute commands via shell metacharacters.
• CVE-2000-0214 • published on March 22, 2000 FTP Explorer uses weak encryption for storing the username, password, and profile of FTP sites.
• CVE-2000-0216 • published on March 22, 2000 Microsoft email clients in Outlook, Exchange, and Windows Messaging automatically respond to Read Receipt and Delivery Receipt tags, which could allow an attacker to flood a mail system with responses by forging a Read Receipt request that is redirected to a large distribution list.
• CVE-2000-0219 • published on March 22, 2000 Red Hat 6.0 allows local users to gain root access by booting single user and hitting ^C at the password prompt.
• CVE-2000-0154 • published on February 23, 2000 The ARCserve agent in UnixWare allows local attackers to modify arbitrary files via a symlink attack.
• CVE-2000-0158 • published on February 23, 2000 Buffer overflow in MMDF server allows remote attackers to gain privileges via a long MAIL FROM command to the SMTP daemon.
• CVE-2000-0160 • published on February 23, 2000 The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.
• CVE-2000-0163 • published on February 23, 2000 asmon and ascpu in FreeBSD allow local users to gain root privileges via a configuration file.
• CVE-2000-0153 • published on February 23, 2000 FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack.
• CVE-2000-0167 • published on February 23, 2000 IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
• CVE-2000-0155 • published on February 23, 2000 Windows NT Autorun executes the autorun.inf file on non-removable media, which allows local attackers to specify an alternate program to execute when other users access a drive.
• CVE-2000-0151 • published on February 16, 2000 GNU make follows symlinks when it reads a Makefile from stdin, which allows other local users to execute commands.
• CVE-2000-0142 • published on February 16, 2000 The authentication protocol in Timbuktu Pro 2.0b650 allows remote attackers to cause a denial of service via connections to port 407 and 1417.
• CVE-2000-0143 • published on February 16, 2000 The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP.
• CVE-2000-0147 • published on February 16, 2000 snmpd in SCO OpenServer has an SNMP community string that is writable by default, which allows local attackers to modify the host's configuration.
• CVE-2000-0138 • published on February 15, 2000 A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such as (1) Trinoo, (2) Tribe Flood Network (TFN), (3) Tribe Flood Network 2000 (TFN2K), (4) stacheldraht, (5) mstream, or (6) shaft.
• CVE-2000-0104 • published on February 8, 2000 The Shoptron shopping cart application allows remote users to modify sensitive purchase information via hidden form fields.